Manifest
$ rpki-client -vvf rpki.apnic.net/member_repository/A914A8CB/C8B0F4F221C111E7954E8717C4F9AE02/_zJ4o61YsYpUbj_tzVN4QFJ3Z6g.mft
File: _zJ4o61YsYpUbj_tzVN4QFJ3Z6g.mft (raw, json)
Hash identifier: RxAuXSjh327n683Uzi+uAbxpqhK8t9AtwFSXG5Y2jeI=
Subject key identifier: F6:21:D6:4B:2F:28:A2:92:7D:81:B8:10:BD:7A:E6:65:5E:26:FA:F3
Authority key identifier: FF:32:78:A3:AD:58:B1:8A:54:6E:3F:ED:CD:53:78:40:52:77:67:A8
Certificate issuer: /CN=A914A8CB/serialNumber=FF3278A3AD58B18A546E3FEDCD537840527767A8
Certificate serial: 1B02
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_zJ4o61YsYpUbj_tzVN4QFJ3Z6g.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A914A8CB/C8B0F4F221C111E7954E8717C4F9AE02/_zJ4o61YsYpUbj_tzVN4QFJ3Z6g.mft
Manifest number: 1AEB
Signing time: Fri 28 Mar 2025 16:25:32 +0000
Manifest this update: Fri 28 Mar 2025 16:25:31 +0000
Manifest next update: Fri 04 Apr 2025 16:25:31 +0000
Files and hashes: 1: _zJ4o61YsYpUbj_tzVN4QFJ3Z6g.crl (hash: 6Gpj7U1xv/4B1RMFFTC+M2jO/knwtkN0vYOB2J9mjeY=)
2: 90C8D27021C211E786829418C4F9AE02.roa (hash: LAyDzMwa+0p5sRd95KyHExi3C3Z0niccQY6hw3OgiYs=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6914 (0x1b02)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A914A8CB
Validity
Not Before: Mar 28 16:25:31 2025 GMT
Not After : Apr 4 16:25:31 2025 GMT
Subject: CN=67e6cd7c-5ae6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:e1:a4:6a:a5:25:5e:48:e9:a5:e2:00:39:b5:
8a:21:26:14:f9:38:64:c1:72:d9:0e:fb:c3:ed:be:
ca:5a:0c:e7:81:1b:45:2a:92:25:28:d8:22:b0:41:
b8:c4:16:70:78:04:b2:de:64:f5:9f:4c:66:c0:a1:
73:98:7a:0f:cd:cd:45:bc:1f:cd:8e:1b:7c:7e:3b:
cd:31:8c:00:da:12:f2:1b:eb:15:89:31:3a:56:75:
3c:be:8c:32:f1:e7:95:d9:26:dd:db:cc:8e:84:32:
01:4e:25:61:f3:b8:f2:da:ce:cf:1f:43:87:42:88:
9f:b8:6d:1d:85:f0:98:a3:c4:5a:13:f2:31:88:8f:
a4:1a:c5:7e:a9:7f:dd:ed:0d:23:37:0b:95:88:26:
0e:e0:8c:0b:41:12:94:2d:84:23:a2:16:71:a5:8e:
4e:1d:c0:3a:d7:2a:de:b3:92:d6:2d:18:af:cf:f4:
cd:8a:52:46:28:b9:f8:d2:f1:cd:a6:3e:e9:d7:cc:
33:e4:e3:3a:05:44:b4:47:a4:43:9e:24:6c:40:c1:
b0:0c:a8:5a:23:9c:30:db:07:84:1e:4a:77:3d:be:
00:0c:5b:de:5d:7a:ab:8a:4c:94:f5:d6:3d:b5:d2:
c5:4c:bc:d2:da:d9:65:75:bf:95:a4:83:41:af:81:
d2:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:21:D6:4B:2F:28:A2:92:7D:81:B8:10:BD:7A:E6:65:5E:26:FA:F3
X509v3 Authority Key Identifier:
keyid:FF:32:78:A3:AD:58:B1:8A:54:6E:3F:ED:CD:53:78:40:52:77:67:A8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A914A8CB/C8B0F4F221C111E7954E8717C4F9AE02/_zJ4o61YsYpUbj_tzVN4QFJ3Z6g.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_zJ4o61YsYpUbj_tzVN4QFJ3Z6g.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914A8CB/C8B0F4F221C111E7954E8717C4F9AE02/_zJ4o61YsYpUbj_tzVN4QFJ3Z6g.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
73:36:ec:0c:d1:b7:0a:53:7d:0f:cc:07:7c:e4:7b:0c:1e:01:
0a:11:fd:db:5f:f9:cb:1a:f7:e3:b2:f1:6b:01:be:d4:8f:8f:
40:11:f4:df:e8:03:af:5c:79:98:af:ba:fd:cf:5b:5e:4c:8e:
ff:0f:a5:56:9d:25:04:7b:3b:eb:db:d4:3f:fa:ab:74:99:3f:
05:2d:96:15:fa:f7:2b:74:eb:50:ab:41:4d:81:4e:bc:1d:89:
f6:d7:5a:71:60:9b:cb:cd:68:5f:07:c8:6f:e6:57:27:24:9b:
d2:a0:db:c2:48:39:be:1a:88:fd:ab:a9:65:9c:a3:f8:17:e2:
64:d8:0e:61:2f:05:77:98:cf:87:f0:e8:e0:30:e6:29:2b:67:
14:aa:4c:e7:40:e8:ce:f6:b9:7b:a7:48:01:d8:09:ff:8c:22:
be:4d:75:34:ee:48:07:f0:10:50:a5:a2:1b:32:06:f3:0d:12:
e9:e6:9e:f6:52:2e:0c:57:ad:6b:59:bf:c1:da:4d:96:e0:ed:
ec:63:03:f9:b2:2b:40:72:46:60:a4:0a:82:70:36:f5:c7:72:
44:b9:ca:b5:83:0e:f4:1c:90:b9:2b:71:c7:68:c8:e8:4a:54:
f2:80:2a:ce:25:4a:1d:14:8b:e3:05:65:0d:92:a1:9b:0e:a4:
ff:c7:ca:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 09:45:33 2025 by rpki-client